Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0A97F1CA0DD011EF886811F7007001B1.roa
File: 0A97F1CA0DD011EF886811F7007001B1.roa (raw, json)
Hash identifier: Q8vLMUPsbiQGWPu7kODw0NtaGQubh+bzuA+sw4PcK2Q=
Subject key identifier: D2:67:32:F4:75:8F:6E:45:D1:F4:DE:89:94:F6:BB:CE:B1:2A:8B:86
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B629
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0A97F1CA0DD011EF886811F7007001B1.roa
Signing time: Thu 09 May 2024 06:47:45 +0000
ROA not before: Thu 09 May 2024 06:47:42 +0000
ROA not after: Wed 29 May 2024 06:47:42 +0000
asID: 139646
IP address blocks: 154.208.12.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46633 (0xb629)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 9 06:47:42 2024 GMT
Not After : May 29 06:47:42 2024 GMT
Subject: CN=663c7191-e9e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:73:c6:f6:bd:5b:fe:0e:1e:81:4d:42:4a:6b:
84:ba:9c:f6:55:98:28:1d:4f:78:45:2c:67:62:84:
da:b6:65:1c:f4:96:e1:e1:5e:05:0d:d8:f9:6c:8a:
03:e9:57:35:7c:d8:7d:1d:35:71:89:74:a7:ba:91:
20:1d:d6:ad:7b:2a:69:51:83:e0:ec:40:4e:79:17:
db:5f:fb:62:09:45:fb:f3:7a:58:13:1a:4f:e5:29:
a4:c9:d7:c3:78:d5:e2:52:e8:c0:f9:43:17:63:a9:
a8:f7:35:84:69:d2:3a:76:99:b7:f7:8c:96:08:49:
b4:73:e7:6e:e3:54:e7:ed:83:bd:3a:cb:30:3a:7f:
b5:85:1e:ef:cf:3e:52:d0:f7:ed:5c:12:d6:9c:10:
b7:fd:b0:3a:06:55:68:2a:1e:16:61:d6:5a:27:9e:
ef:fa:50:99:ec:86:f4:35:4d:7a:b0:d1:f3:db:90:
7e:94:7c:08:f8:51:e5:b0:e3:42:7b:cc:df:5c:f4:
f7:0c:40:92:8f:dd:1c:8f:1c:f7:af:64:9e:c1:c9:
27:59:06:a2:90:f6:ba:ac:32:19:99:75:d4:48:a4:
8f:52:19:38:f0:22:45:8a:15:af:78:23:5b:ae:3b:
1f:c0:96:43:36:9f:9a:8b:e1:25:3e:9a:96:0b:09:
eb:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:67:32:F4:75:8F:6E:45:D1:F4:DE:89:94:F6:BB:CE:B1:2A:8B:86
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0A97F1CA0DD011EF886811F7007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.12.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:a7:3b:0b:43:31:87:0a:09:f7:07:7d:7a:d6:87:7f:5e:4c:
d5:55:cc:a8:3e:76:63:40:89:ef:90:b4:a6:bb:92:63:86:46:
39:55:36:6c:b1:a6:f4:50:f0:c8:cb:85:9b:ea:64:de:5f:5a:
f7:73:0b:3e:c6:9d:35:66:40:5d:ab:d3:62:1a:54:dc:ab:f5:
e7:b2:ac:fe:17:41:a4:25:77:40:20:11:b7:0f:c9:85:41:ba:
d6:a4:34:6d:5a:f5:9d:11:37:74:e8:65:b2:92:6f:eb:fb:77:
33:c2:b8:98:88:9a:2a:c6:a9:d5:8b:54:9f:04:de:2d:fc:d7:
b6:7b:28:ed:cd:dc:b1:4a:e6:3c:b4:ee:3f:dd:4d:7d:7c:30:
fb:c7:f3:0b:f7:4a:b2:b4:c9:20:10:ff:62:39:d2:68:5e:53:
4b:6d:6b:d4:df:9b:cc:c5:8e:df:62:f3:95:a2:f4:61:18:0a:
d5:52:bb:de:f7:4b:05:85:8c:8c:03:f3:3a:6e:73:bb:a9:78:
4c:da:6d:24:94:10:c1:6f:9d:a1:81:d4:55:21:42:77:85:74:
e3:38:f9:37:24:82:10:99:7b:fe:82:f1:b4:0c:a9:31:74:68:
71:58:40:fb:fe:b4:a5:e2:b5:31:83:21:3c:77:42:09:8e:74:
b2:20:bb:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:17 2024 by rpki-client on console-ams.rpki-client.org